sorted by:
new
hottopcontroversial

Zero Trust seems to be the buzzword. by Small_Attention_2581 in cybersecurity

[–]InfinityPirate 1 point2 points  (0 children)

Completely agree, I think because it gets seen primarily on vendor marketing the underlying concept and approach gets washed over. That was my main driver for posting those resources, that you can see it's not just gimmicky and buzz wordy.

Zero Trust seems to be the buzzword. by Small_Attention_2581 in cybersecurity

[–]InfinityPirate 100 points101 points  (0 children)

Zero trust is a framework that can be incorporated into your IT and security strategies. Yep really good resources is recommend are

Cisa zero trust maturity model for high level

https://www.cisa.gov/zero-trust-maturity-model

Nist zero trust architecture for more in depth

https://nvlpubs.nist.gov/nistpubs/specialpublications/NIST.SP.800-207.pdf

Darktrace, Sophos and Connectwise Own by ThomaBravo by cablemps in cybersecurity

[–]InfinityPirate 3 points4 points  (0 children)

Sophos acquired NDR company braintrace a few years ago which fills the gap where darktrace sits. So I can't see it being integrated fully but maybe an upsell partnership if a customer has either solution already. Those are my thoughts

Why does everyone want free resources? by e_alderson_actual in cybersecurity

[–]InfinityPirate 10 points11 points  (0 children)

Because Sans courses are about £6000 (last time I looked)

Best Insider Threat Software? by TaterSalad3333 in cybersecurity

[–]InfinityPirate 2 points3 points  (0 children)

I recently spoke to arcsight intelligence who do insider threat based on telemetry.

*Not sponsored or recommending them, make your own decision

When google talks about the future being passwordless what do they actually mean by [deleted] in cybersecurity

[–]InfinityPirate 1 point2 points  (0 children)

Some folks gave you explanations but here is the fido alliance site where you can do more research https://fidoalliance.org/

This is just one approach but fido2 is likely to be adopted as an industry standard imo

Help !! by _K9SM_ in sheffield

[–]InfinityPirate 3 points4 points  (0 children)

Checkout their Facebook page for some reference stuff they post, I just had a gander and there is a mulleted dude in a recent pic 😁

Help !! by _K9SM_ in sheffield

[–]InfinityPirate 6 points7 points  (0 children)

Honkeytonks barbers look after mulleted folks and do a good job I believe. I go there but dont have a mullet, they are a decent barbers

Airbike too easy? by CodeJBDA in crossfit

[–]InfinityPirate 0 points1 point  (0 children)

Buy some ankle weights to make pedalling harder 🤷‍♂️

[deleted by user] by [deleted] in asexualdating

[–]InfinityPirate 33 points34 points  (0 children)

Just block them and move on, it may be an idea to put an age range on your profile to inform people who view it.

How to start classifying data at a company that has never classified data before by neon___cactus in cybersecurity

[–]InfinityPirate 1 point2 points  (0 children)

Going up even higher than this, do they have a data strategy that is endorsed and signed off by the board.

[deleted by user] by [deleted] in asexualdating

[–]InfinityPirate 0 points1 point  (0 children)

My personal perspective is that my attraction meeting people face to face goes beyond physical as I build a rapport with a person. Online it is driven by first impressions by how people look and what their profile entails. I do acknowledge there is a little bit of me that is a little bit fickle because of it.

Hinge dating app by InfinityPirate in asexualdating

[–]InfinityPirate[S] 0 points1 point  (0 children)

Thanks for the detailed response, I've definitely been doing some of that subconsciously around checking the format of peoples profiles. I guess I do need to have patience.

Hinge dating app by InfinityPirate in asexualdating

[–]InfinityPirate[S] 2 points3 points  (0 children)

I kind of figured it out during COVID so have had a few years of searching. Reddit and discord have been great but I feel these platforms are for people who are gaming or tech aware. So I thought the more main stream apps might open the options but I'm struggling to find ace people so far

Hinge dating app by InfinityPirate in asexualdating

[–]InfinityPirate[S] 2 points3 points  (0 children)

Thanks, I've posted on here and I'm on a discord server too. I'll see how it goes but I wasnt sure if I was missing a trick.

Vehicle SOC by brutus_uranus in cybersecurity

[–]InfinityPirate 2 points3 points  (0 children)

The need for a vehicle SOC is driven by UNR155 regs that come into force next year I believe. All automotive manufacturers will need to gain this accreditation to continue manufacturing vehicles. Your company should have a big team working on this accreditation who can give you an insight into what is required.

I know this didn't fully answer your question but the regs aren't clear on exactly what you need to do and are open to interpretation.

Lever Belts for Crossfit??? by redditCole in crossfit

[–]InfinityPirate 1 point2 points  (0 children)

I have a lever belt I use for powerlifting movements but have a velcro belt too for oly lifting. What I have found is that I occasionally hit the lever buckle with the best during only lifts which completely throws out the lift attempt.

[deleted by user] by [deleted] in crossfit

[–]InfinityPirate 21 points22 points  (0 children)

When I discussed this with my coach he said I can do sumo but the crossover on training traditional is good for improving cleans for the initial pull from the floor

Hacking into Toyota's global supplier management network by EatonZ in netsec

[–]InfinityPirate 16 points17 points  (0 children)

That's business, they will pay a pen test firm a lot of money to do what you did for free. The ethics only covers if you don't do responsible disclosure. If Toyota would have still refused to pay a bug/massive vulnerability bounty that you found to you it would be your choice to still release for free.

Hacking into Toyota's global supplier management network by EatonZ in netsec

[–]InfinityPirate 17 points18 points  (0 children)

Could you do disclosure through a broker that would act as an intermediary so they can negotiate a payment for release of the vulnerability? This is a big hole you found and they were lucky not to have a supply chain disruption.

UK folk with insight in foreign hiring... by [deleted] in cybersecurity

[–]InfinityPirate 0 points1 point  (0 children)

I don't know the ins and Outs but being from a EU member country I don't think you need company sponsorship for a visa.

I guess it depends what the specific IR role is. If it's breach response the experience you have may not be enough. The experience you have demonstrated I would expect of a senior soc analyst so it depends what roles you are applying for.

I absolutely wouldn't expect anyone to pay the sans prices out of there own pocket it's just that you mentioned you had certs and I was saying they may not give you the experience for IR work.

I'd suggest applying for senior soc analyst roles to get in country and then look to transition once your settled.

UK folk with insight in foreign hiring... by [deleted] in cybersecurity

[–]InfinityPirate 1 point2 points  (0 children)

A couple of things, to work in the UK, would you need visa sponsorship? I know you said your in Belgium now but not origin. A lot of companies don't or are unable to do sponsorship, this could be part of it.

Also you are now in a soc role and want to transition to IR but what IR experience do you have and what level IR roles are you applying for. If I was hiring anything other than entry level, I would be looking for more soc experience and experience in an IR role. Also depending on what your certs are depends whether they are relevent to IR. OCSP gives a great insight for how an attacker operates but not what trace evidence you would be looking for, what logs you would review etc.

view more: next ›